CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-5902

viksoe GMail Drive shell extension allows remote attackers to perform virtual filesystem actions via e-mail messages with certain subject lines, as demonstrated by (1) a GMAILFS: [13;a;1] message with a new filename and a file attachment, which injects a new file into the filesystem; (2) a GMAILFS: [13;a;1] message with an existing filename and a file attachment, which overwrites existing file content; and (3) a GMAILFS: [14;a;1] message, which creates a folder.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.securityfocus.com/archive/1/450683/100/0/threaded
http://www.securityfocus.com/archive/1/450683/100/0/threaded

Products affected by CVE-2006-5902

Viksoe » Gmail Drive » Version: Any

cpe:2.3:a:viksoe:gmail_drive:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-5902

Products

Pricing

Contact Us